Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

HC3 Analyst Note
HC3 Analyst Note

Tools for Detection of Compromise of Microsoft Exchange Server Vulnerabilities
Executive Summary Microsoft released patches for four Exchange Server zero-day vulnerabilities on March 2, 2021. They are being actively and aggressively exploited by sophisticated state-sponsored threat actors who have a history of targeting healthcare organizations. Sinc ethe release of the…
Headline
News

Update: DHS-CISA and HHS ASPR urge health care sector to patch Microsoft Exchange Server vulnerabilities
The Department of Health and Human Services’ Office of the Assistant Secretary for Preparedness and Response urged the health care and public health sector to patch on-premises Microsoft Exchange Server vulnerabilities announced last week, noting that additional criminal and state actors have been…
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green Coronavirus Update: March 4, 2021
H-ISAC TLP Green Coronavirus Update for March 4, 202.
Other Cybersecurity Reports
Other Cybersecurity Reports

HC3 TLP White Threat Intelligence Briefing: DNS Tunneling, March 4, 2021
HC3 TLP White Threat Intelligence Briefing for March 4, 2021
H-ISAC: White Reports
H-ISAC: White Reports

Health-ISAC TLP Green: Daily Cyber Headlines March 4, 2021
Health-ISAC TLP Green Daily Cyber Headlines for March 4, 2021.
Headline
News

Hackers target on premises Microsoft Exchange server vulnerabilities
Cyber attackers are using Microsoft Exchange Server vulnerabilities to access Exchange server email accounts on an organization’s premises and install malware to facilitate long-term access to victim environments, the Microsoft Threat Intelligence Center announced.
HC3 Analyst Note
HC3 Analyst Note

HC3 TLP Analyst Note: Microsoft Exchange Server Zero-Days Actively Exploited March 3, 2021
Microsoft released patches for four Exchange Server zero-day vulnerabilities that are being actively exploited by sophisticated threat actors who have a history of targeting healthcare organizations with cyberattacks.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green: Daily Cyber Headlines, March 1, 2021
H-ISAC TLP Green Daily Cyber Headlines for March 1 2021.
H-ISAC: White Reports
H-ISAC: White Reports

H-SIAC TLP White Hacking Healthcare Report March 2, 2021
This edition of Hacking Healthcare includes the contentious issue of mandating cyberattack disclosures in the wake of SolarWinds and considers what role ISACs and ISAOs could play in improving information sharing.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green: Daily Cyber Headlines, February 26, 2021
H-ISAC TLP Green Daily Cyber Headlines for February 26, 2021.
Subscribe to Cybersecurity